Approved changes feed: RSS · Atom

cpe:2.3:a:clusterlabs:libqb:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorClusterlabs (39a9ebdb-0284-5cdd-a5e6-af877468e529)
ProductLibqb (aa3601c0-a046-5a97-be29-b0659b1fb392)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/clusterlabs/libqb purl2cpe 2026-06-01 10:17:27.384745

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-39976 vulnerable 2026-06-08 06:09:38.222251 Details available
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
Published: 2023-08-08T00:00:00.000Z
Updated: 2024-10-15T17:56:46.579Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-12779 vulnerable 2026-06-08 05:12:40.478191 Details available
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.
Published: 2019-06-07T19:44:25.000Z
Updated: 2024-08-04T23:32:54.924Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.